Sr. Manager, GRC
Chandler, Arizona (McKemy), United States
USD 120K-165K (estimate) Senior-level Full Time
Tasks
- Assess compliance gaps and drive remediation
- Assess contractual cybersecurity risk and negotiate security terms
- Conduct phishing exercises and measure effectiveness
- Conduct third-party risk assessments and due diligence
- Coordinate customer notification requirements for security incidents
- Design implement and maintain continuous control monitoring
- Develop and govern cybersecurity policies and standards
- Drive cybersecurity governance awareness and adoption
- Evaluate compliance against NIST CSF
- Facilitate incident response communications across stakeholders
- Facilitate risk acceptance and risk treatment decisions
- Lead cybersecurity and IT compliance programs
- Lead cybersecurity portion of contract reviews
- Lead cybersecurity training and awareness program
- Manage audit liaison for cybersecurity and IT risk
- Manage enterprise cybersecurity risk register
- Oversee third party risk management cybersecurity components
- Perform self assessments of IT controls
- Provide guidance on acceptable risk and required controls
- Support BISOs certification process and gap assessments
- Support audit planning evidence collection walkthroughs and issue response
- Support cybersecurity external and internal communications
- Support executive and board level cybersecurity risk reporting
- Track and report remediation status
- Translate audit findings into risk ranked remediation plans
Perks/Benefits
- 401k and pension plan
- Employee well-being programs
- Family Support Paid Leave
- Flexible working arrangements
- Medical/Dental/Vision
- Paid Holidays
- Paid time off
Skills/Tech-stack
Application Controls | Audit Liaison | Audit management | BISOs | CMMC | Continuous Control Monitoring | Continuous control | Contract Review | Control monitoring | Cybersecurity | Cybersecurity policies | Enterprise Risk | Enterprise Risk Management | GDPR | Governance Risk | Governance risk compliance | ITGC | Incident Response | NIST CSF | Organizational measures | PCI DSS | Phishing Awareness | Risk Management | Risk compliance | Risk register | Risk register management | SOX | Security operations | Security standards | Technical and Organizational Measures | Third Party | Third-Party Risk | Third-party risk management | Training and Awareness
Education
Related jobs
-
Crisis Communication | Cross-functional | Cross-functional project management | Enterprise Software | Incident ResponseGlobal team operations support | On-call supportMid-level Full TimeBoulder, CO, USA3h ago
-
Procurement Manager, IT & Cybersecurity (Category Lead) USD 110K-157KBusiness reviews | Category Management | Contract Negotiation | Cost of ownership | Cybersecurity compliance401k match | Discounts on company services and products | Employee resource groups | Exercise facility access | Flexible work arrangementsSenior-level Full TimePortland, OR, US R7h ago
-
Technical Account Manager - Central USD 135K-160KAPI Integration | Cloud Security | Customer Relationship Management | Customer Success | Customer relationship401k | Healthcare dental and vision | New parent or family leave | Paid Holidays | Paid time offMid-level Full TimeTexas, USA R12h ago
-
Security Manager USD 95K-130KAccess Control | Auditing | Badging | CCTV | COMSECFinancial benefits | Health benefits | Wellbeing benefitsMid-level Full TimeHonolulu, HI13h ago
-
Program Manager, Security USD 137K-192KAgile | Budgeting | Change Management | Issue Tracking | Program ManagementSenior-level Full TimeMiami, FL18h ago
-
Senior Technical Program Manager USD 140K-200KAgile | Cloud Computing | Confluence | Cybersecurity | GitHubSenior-level Full TimeRemote Canada | Remote United States R20h ago
-
Sr. Program Manager III (6590) USD 175K-207KAI machine learning | Agile | Big Data | Cybersecurity | Data analytics401k company match | Employee Assistance and Wellness Programs | Flexible work arrangements | Health, dental, and vision insurance | HolidaysSenior-level Full TimeWashington, DC20h ago
-
ACAS Vulnerability Assessment Lead SME USD 112K-179KACAS | Asset tagging | Assured compliance assessment solution | Compliance Scanning | Container platformsSenior-level Full TimeFAIRFAX, VA, United States22h ago
-
Information Systems Security Manager US USD 100K-160K800-171 | 800-53 | Access Control | Audit preparation | Awareness TrainingMid-level Full TimeVictor, NY, US1d ago
-
Senior Risk Manager - Data Centers USD 130K-160KARM | Cause analysis | Change Control | Claims management | Construction contractsEqual opportunity workplace | Flexible working environment | Work-life balanceSenior-level Full TimeAbilene, Texas, United States1d ago
-
Senior-level Full TimeNew York, New York, United States1d ago
-
Information System Security Manager (ISSM) USD 118K-162K800-53 | ACAS | Assessment and Authorization | Audit Logging | Continuous MonitoringMid-level Full TimeBath, ME, United States1d ago
-
Enterprise Integration | Management Framework | Project Management | Risk Management | Risk Management FrameworkMid-level Full TimeFort Belvoir, VA, United States1d ago
-
Automation | C++ | Cloud infrastructure | ETL | GolangCollaborative work environment | Flexible working hours | Health and wellness benefits | Inclusive culture | Mentorship and growthSenior-level Full TimeMassachusetts R1d ago
-
AI tools | Automation | C++ | Cloud Computing | ETLCollaborative work environment | Flexible working hours | Health and wellness benefits | Professional development | Remote workMid-level Full TimeMinnesota R1d ago
-
Automation | C++ | Cloud infrastructure | ETL | GolangFlexible working hours | Fully remote | Health and wellness benefits | Professional development and training | Supportive team cultureSenior-level Full TimeIdaho R1d ago
-
Automation | C++ | Cloud infrastructure | ETL | GolangCollaborative inclusive work environment | Flexible working hours | Health and wellness benefits | Mentorship and growth | Professional developmentMid-level Full TimeColumbia R1d ago
-
Automation | Cloud infrastructure | ETL | Golang | Incident ResponseCollaborative inclusive work environment | Flexible working hours | Fully remote work | Health and wellness benefits | Professional development and trainingMid-level Full TimeFlorida R1d ago
-
Automation | C++ | Cloud infrastructure | ETL | GolangCollaborative and inclusive work environment | Flexible working hours | Health and wellness benefits | Professional development | Remote workSenior-level Full TimeColorado R1d ago
-
Automation | C plus plus | Cloud infrastructure | ETL | GolangCollaborative inclusive work environment | Flexible working hours | Growth and mentorship | Health and wellness benefits | Professional development and trainingSenior-level Full TimeCalifornia R1d ago
-
Automation | Cloud | Data Pipelines | ETL | GolangCollaborative & Inclusive Culture | Flexible working hours | Growth and mentorship | Health and wellness benefits | Professional developmentSenior-level Full TimeConnecticut R1d ago
-
Automation | C plus plus | Cloud infrastructure | Data Pipelines | ETLCollaborative & Inclusive Culture | Flexible working hours | Fully remote | Growth and mentorship | Health and wellness benefitsMid-level Full TimeArizona R1d ago
-
Manager of Information Security USD 125K-150KAccess Control | Access Management | Awareness Training | Business Continuity | Cloud Security401k match | Dental insurance | Disability insurance | Flexible spending account | Health insuranceMid-level Full TimePark Ridge, IL, US1d ago
-
Cybersecurity Manager USD 110K-140KAccess Management | Anti-Malware | Change Management | Data Loss Prevention | Data loss401k | Dental insurance | Life insurance | Medical insurance | Paid time offMid-level Full TimeRemote, United States R1d ago
-
Lead Cyber Product Owner (API Security) USD 179K-225KAgile | Application Security | Customer Research | Cybersecurity | Data analyticsSenior-level Full TimeMcLean, VA, United States1d ago